Insider threats pose a significant risk to cybersecurity in businesses, often overshadowed by the focus on unintentional employee errors. A recent Kaspersky study revealed that, over the past two years, 77% of global companies experienced cyber incidents, with 20% attributed to deliberate malicious actions by employees.
Insider threats encompass both unintentional and intentional actions. Unintentional threats arise from employee mistakes like falling for phishing or sending sensitive information to the wrong recipient. On the other hand, intentional threats involve malicious insiders deliberately hacking into systems for financial gain or revenge, disrupting regular operations, exposing weaknesses, and obtaining confidential information.
Read:
Kaspersky warns of continued APT attacks in 2024
Kaspersky’s guide to tidying up your digital life
Insider threats
Malicious insiders present a unique challenge due to their specific knowledge of organizational infrastructure, internal network access, and connections within the company. Their motives often include financial gain, revenge after termination, dissatisfaction with job conditions, or collaboration with external actors to compromise the organization.
Financial gain is a primary motive, with employees stealing sensitive data for sale to competitors or on the dark web. Revenge can manifest when fired employees retain remote access to their work accounts. Dissatisfaction with job circumstances may drive malicious actions as a form of retaliation.
Collaboration between insiders and external actors is a growing concern. Cybercriminals may recruit insiders for various attacks, while third parties may work with employees to obtain sensitive company data.
Kaspersky said that insider threats demand attention due to their potential to exploit internal knowledge, connections, and motives. Addressing these risks requires comprehensive cybersecurity measures and heightened awareness of the various factors contributing to malicious actions by staff.